[OE-core] [PATCH][v2] unzip: fix three CVE defects
Rongqing Li
rongqing.li at windriver.com
Mon Jun 29 00:00:18 UTC 2015
On 2015年06月28日 20:37, Richard Purdie wrote:
> On Wed, 2015-06-24 at 09:12 +0800, rongqing.li at windriver.com wrote:
>> From: Roy Li <rongqing.li at windriver.com>
>>
>> Port four patches from unzip_6.0-8+deb7u2.debian.tar.gz to fix:
>> cve-2014-8139
>> cve-2014-8140
>> cve-2014-8141
>>
>> Signed-off-by: Roy Li <rongqing.li at windriver.com>
>
> I've gone and mixed up patches for this one and merged the wrong one.
> Could you send a patch to fix the patches in master to be the correct
> ones please? Sorry about that.
>
> Cheers,
>
> Richard
OK, I will
-Roy
>
>
>
--
Best Reagrds,
Roy | RongQing Li
More information about the Openembedded-core
mailing list